D-Link DSL-504 Advanced Filter & Firewall

DSL-504 ADSL Router User’s Guide

37

Advanced Filter & Firewall

One of the most important elements of any network security implementation is the firewall. Packet filtering is a

basic firewall sec urity measure and should be used on any network that is exposed to security risk. A packet

filter system examines data packets and scrutinizes them in o rder to control network access. Filterin g rules

determine whether packets are passed through the Router from either side of t he gateway. The rules are created

and controlled by the network administrator and can be precisely defined. These r ules are used to block access to

the LAN from outside the network and/or to deny access to the WAN fro m within the network. The Router uses

filtering rules to exa mine data packet header s for specific infor mation. Packets passing through the Router that

do not meet the criteria specified by the rule set are dropped.

In order to improve network security without severely limiting network efficiency, it is important to carefully

plan the sets of access rules. Effective implementation of packet filtering requires detailed kno wledge of network

services and communication protocols. An overly complicated filtering scheme can adversely affect Router

performance, while an inadequate set of rules may needlessly compromise security.

Filtering rules can be precisely defined based upon source and destination IP address, as well as port and

protocol information.

Figure 4 - 10. Filter & Firewall Main Menu

The Existing Entry number tells you how many routes are currently configured. The Valid Entry number tells

you the number of routes that are enabled. Filtering can be universally enabled or disabled with the d rop-down

IP Filter State drop-down menu.

Contents

Main DSL-504 ADSL Router Users Guide ii Wichtige Sicherheitshinweise Limited Warranty Hardware: DSL-504 ADSL Router Users Guide iii Software: D-Link Offices for Registration and Warranty Service LIMITATION OF WARRANTIES LIMITATION OF LIABILITY Trademarks Copyright Statement TABLE OF CONTENTS Page About This Users Guide Guide Overview Before You Start Installation Overview Requirements Low Pass Filters Operating System Web Browser Ethernet Port (NIC Adapter) Packing List Page Introduction What is ADSL? Router Description and Operation Router Features Front Panel Display and LED Indicators Rear Panel Cable Connections Hardware Installation Connect ADSL Line Connect Router to the Ethernet Computer to Router Connection Switch to Router Connection Power On Router Configuring the Router for the First Time Wan Configuration Summary Configuring IP Settings on Your Computer Configure Windows XP for DHCP Page Page Windows 2000 Configure Windows 2000 for DHCP Windows ME Configure Windows ME for DHCP Windows 95, 98 Configure Windows 95, 98 for DHCP Windows NT 4.0 workstations: Configure Windows NT 4.0 for DHCP Access the Configuration Manager Configure the Router Page Changing the Connection Profile Router with PPPoA Connections Router with RFC 1483 Encapsulation Connections Router with IPoA Connections Bridge with RFC 1483 Connections Web-based Management Accessing the Web Manager Folders and Menus Router Configuration WAN Connection Page Creating a New Connection Profile Connection Profile Configuration Configuring LAN IP Settings Layer 2 Filtering Proxy DNS Settings DHCP Configuration NAT Configuration DMZ IP Address IP Masquerade Pass Through IP Masquerade Timer Port Redirection Page Static Route Configuration Advanced Filter & Firewall Page RIP Date & Time Settings UPnP System Maintenance ATM Loopback Test System Username and Password Save Changes Factory Reset Update Firmware Configuration File Maintenance Remote Administration Access ADSL Line Setting Summary System Summary Page DHCP Allocation Table Port Redirection Summary Runtime Routing Table Filter and Firewall Summary Line Condition Carrier Chart A Technical Specifications Page B Microfilters and Splitters Microfilters Line Splitter Offices Page Registration Card